34 matches found
EUVD-2014-9197
Malware in sbrugna...
EUVD-2014-8573
Malware in sbrugna...
EUVD-2016-2586
Malware in sbrugna...
CVE-2016-1487
Lexmark Markvision Enterprise before 2.3.0 misuses the Apache Commons Collections Library, leading to remote code execution because of Java deserialization...
CVE-2013-3055
Lexmark Markvision Enterprise before 1.8 provides a diagnostic interface on TCP port 9789, which allows remote attackers to execute arbitrary code, change the configuration, or obtain sensitive fleet-management information via unspecified vectors...
CVE-2016-6918
Lexmark Markvision Enterprise MVE before 2.4.1 allows remote attackers to execute arbitrary commands by uploading files...
CVE-2016-1487
Lexmark Markvision Enterprise before 2.3.0 misuses the Apache Commons Collections Library, leading to remote code execution because of Java deserialization...
Deserialization of untrusted data
Lexmark Markvision Enterprise before 2.3.0 misuses the Apache Commons Collections Library, leading to remote code execution because of Java deserialization...
CVE-2016-1487
Lexmark Markvision Enterprise before 2.3.0 misuses the Apache Commons Collections Library, leading to remote code execution because of Java deserialization...
Design/Logic Flaw
Lexmark Markvision Enterprise MVE before 2.4.1 allows remote attackers to execute arbitrary commands by uploading files...
CVE-2016-6918
Lexmark Markvision Enterprise MVE before 2.4.1 allows remote attackers to execute arbitrary commands by uploading files...
CVE-2014-8741
Directory traversal vulnerability in the GfdFileUploadServerlet servlet in Lexmark MarkVision Enterprise before 2.1 allows remote attackers to write to arbitrary files via unspecified vectors...
CVE-2014-8742
Directory traversal vulnerability in the ReportDownloadServlet servlet in Lexmark MarkVision Enterprise before 2.1 allows remote attackers to read arbitrary files via unspecified vectors...
CVE-2014-8741
Directory traversal vulnerability in the GfdFileUploadServerlet servlet in Lexmark MarkVision Enterprise before 2.1 allows remote attackers to write to arbitrary files via unspecified vectors...
CVE-2014-8741
CVE-2014-8741 documents a directory traversal vulnerability in the Lexmark MarkVision Enterprise product, specifically the GfdFileUploadServerlet servlet, before version 2.1. The issue allows a remote attacker to write to arbitrary files via unspecified vectors, with public references noting poss...
CVE-2014-8742
Directory traversal vulnerability in the ReportDownloadServlet servlet in Lexmark MarkVision Enterprise before 2.1 allows remote attackers to read arbitrary files via unspecified vectors...
CVE-2014-8742
Lexmark MarkVision Enterprise prior to 2.1 is affected by CVE-2014-8742, a directory traversal vulnerability in the ReportDownloadServlet that allows remote attackers to read arbitrary files. The root cause is improper handling/sanitization of input leading to unauthorized file disclosure. Some s...
Lexmark Markvision Enterprise Java Object Deserialization RCE
The remote Lexmark Markvision Enterprise server is affected by a remote code execution vulnerability due to unsafe deserialize calls of unauthenticated Java objects to the Apache Commons Collections ACC library. An unauthenticated, remote attacker can exploit this, by sending a specially crafted...
Lexmark Markvision Enterprise LibraryFileUploadServlet Directory Traversal (CVE-2014-9375)
A directory traversal vulnerability has been reported in Lexmark Markvision Enterprise. The vulnerability is due to insufficient input validation in LibraryFileUploadServlet when processing zip files. A remote, unauthenticated attacker could exploit this vulnerability by enticing the target user ...
Lexmark Markvision Enterprise LibraryFileUploadServlet servlet directory traversal vulnerability
Lexmark Markvision Enterprise is the United States Lexmark Lexmark a set of Web-based network device management software. The software is mainly used to manage network devices such as printers, such as providing some printer drivers for Unix systems. A directory traversal vulnerability exists in...